Dear Visitor,

Our system has found that you are using an ad-blocking browser add-on.

We just wanted to let you know that our site content is, of course, available to you absolutely free of charge.

Our ads are the only way we have to be able to bring you the latest high-quality content, which is written by professional journalists, with the help of editors, graphic designers, and our site production and I.T. staff, as well as many other talented people who work around the clock for this site.

So, we ask you to add this site to your Ad Blocker’s "white list" or to simply disable your Ad Blocker while visiting this site.

Continue on this site freely
You are here: Home / Customer Data / EU, US Agree on Data-Sharing Rules
European Union and U.S. Agree on New Data-Sharing Rules
European Union and U.S. Agree on New Data-Sharing Rules
By Dan Heilman / CRM Daily Like this on Facebook Tweet this Link thison Linkedin Link this on Google Plus
Following months of negotiations and uncertainty, the so-called Privacy Shield that regulates the flow of data between European countries and the United States will finally take effect. As of August 1, businesses will have a simple, legal means by which to export the personal information of European Union citizens to the U.S.

Approved today by the European Commission, the Privacy Shield guarantees an adequate level of protection for personal data transferred from the EU to self-certified organizations in the U.S. The agreement, which replaces the defunct Safe Harbor agreement, was announced in Brussels by European Commissioner for Justice Vera Jourova.

The commission notified the governments of the EU's 28 member states of its approval today, putting the Privacy Shield officially into effect. Companies can register their compliance with Privacy Shield beginning August 1.

Old Agreement Overturned

The European Commission deemed the Safe Harbor agreement adequate in 2000, but the Court of Justice of the European Union overturned that agreement last fall. The commission said that such an agreement could only work if it provided a level of privacy protection that was essentially equivalent to that of the 1995 Data Protection Directive, which regulates the processing of personal data within the European Union.

"Legislation permitting the public authorities to have access on a generalized basis to the content of electronic communications must be regarded as compromising the essence of the fundamental right to respect for private life," according to the EU court.

Early drafts of the Privacy Shield were criticized because many people, including the commission’s own advisors, felt its provisions on mass surveillance were too vague. That led to concerns that the new agreement would be overturned in court, but subsequent revisions suggested by the EU court satisfied the parties involved.

Collection vs. Surveillance

The Privacy Shield differs from Safe Harbor in that it offers an annual joint review that aims to make it easier to solve problems as they come along, and also takes into account recommendations from independent European data protection authorities, according to Jourova. For instance, one improvement that was negotiated better clarified when bulk collection of data may occur and what distinguishes it from mass surveillance.

U.S. Commerce Secretary Penny Pritzker said that for businesses, the new data flow framework will "facilitate more trade across our borders, more collaboration across the Atlantic, and more job creating investments in our communities. For consumers, the framework will ensure you have access to your favorite online services and the latest technologies, while strongly protecting your privacy."

However, not everyone is on board with the new data agreement, especially advocates for digital privacy, who have argued that bulk collection and mass surveillance could too easily be interpreted as synonymous. The Article 29 Working Party, which is made up of the EU's national data protection authorities, said that it is analyzing the final texts of the Privacy Shield and will meet later this month to draft a response.

Image credit: iStock/Artist's concept.

Tell Us What You Think


Like Us on FacebookFollow Us on Twitter

Over the past decade, hospitals have been busy upgrading their systems from paper to electronic health records. Unfortunately, spending so much on EHR may have left insufficient funds for security.
The British government officially blamed Russia for waging the so-called NotPetya cyberattack that infected computers across Ukraine before spreading to systems in the U.S. and beyond.
© Copyright 2018 NewsFactor Network. All rights reserved. Member of Accuserve Ad Network.